Mashup of Projects

Navigation

Cisco ASA5500 VPN Performance

Edit – Feb 9 2018:
I did another test, to a StrongSwan EndPoint, over the internet (to a VPS), and was able to transfer a 111Mbyte file in 30s, 3.7MByte/s or 29.6Megabit/s, which is limited by my internet connection. The ASA5505, is still useful for many people. I’m not sure why it was so slow in the below test.

Just to show how quickly technology has advanced, I did some benchmarks on a Cisco ASA5505 in order to see how it would perform encrypting information into a VPN. I made a quick test network between two interfaces on an HP DL350G6, with a Ubiquiti Edge Router on one interface, and the Cisco ASA5500 on the other interface. I did one test direct between two VM’s first to get a baseline, and this is what it can do:

A few tips to get this working. On the Ubiquiti Edge, the encryption settings need to match, you can do this by adjusting the advanced settings, as shown below: The Edge does not seem to differentiate between IKE and IPSEC. On the Cisco ASA make sure that the encryption settings on the IKE and IPSec both match.